First published: Tue Apr 25 2023(Updated: )
Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow for improper error message handling which could allow an unauthenticated attacker to execute OS commands remotely by sending crafted packets to an affected device.
Credit: security@zyxel.com.tw security@zyxel.com.tw
Affected Software | Affected Version | How to fix |
---|---|---|
Zyxel Multiple Network-Attached Storage (NAS) Devices | >=4.60<5.36 | |
Zyxel Multiple Network-Attached Storage (NAS) Devices | ||
Zyxel Atp100w Firmware | >=4.60<5.35 | |
Zyxel Atp100w | ||
Zyxel Atp200 Firmware | >=4.60<5.36 | |
Zyxel ATP200 | ||
Zyxel Atp500 Firmware | >=4.60<5.36 | |
Zyxel Atp500 | ||
Zyxel Atp700 Firmware | >=4.60<5.36 | |
Zyxel Atp700 | ||
Zyxel Atp800 Firmware | >=4.60<5.36 | |
Zyxel Atp800 | ||
Zyxel Usg Flex 100 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 100 | ||
Zyxel Usg Flex 100w Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 100w | ||
Zyxel Usg Flex 200 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 200 | ||
Zyxel Usg Flex 50 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 50 | ||
Zyxel Usg Flex 500 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 500 | ||
Zyxel Usg Flex 50w Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 50w | ||
Zyxel Usg Flex 700 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 700 | ||
Zyxel Vpn100 Firmware | >=4.60<5.36 | |
Zyxel Vpn100 | ||
Zyxel Multiple Network-Attached Storage (NAS) Devices | >=4.60<5.36 | |
Zyxel Multiple Network-Attached Storage (NAS) Devices | ||
Zyxel Vpn300 Firmware | >=4.60<5.36 | |
Zyxel Vpn300 | ||
Zyxel Vpn50 Firmware | >=4.60<5.36 | |
Zyxel Vpn50 | ||
Zyxel Zywall Usg 310 Firmware | >=4.60<4.73 | |
Zyxel Zywall Usg 310 Firmware | =4.73 | |
Zyxel Zywall Usg 310 | ||
Zyxel Zywall Usg 100 Firmware | >=4.60<4.73 | |
Zyxel Zywall Usg 100 Firmware | =4.73 | |
Zyxel Zywall Usg 100 | ||
Zyxel firewall | ||
Zyxel Multiple Firewalls | ||
All of | ||
Zyxel Atp100 | ||
Zyxel Atp100 Firmware | >=4.60<5.36 | |
All of | ||
Zyxel Atp100w | ||
Zyxel Atp100w Firmware | >=4.60<5.35 | |
All of | ||
Zyxel ATP200 | ||
Zyxel Atp200 Firmware | >=4.60<5.36 | |
All of | ||
Zyxel Atp500 | ||
Zyxel Atp500 Firmware | >=4.60<5.36 | |
All of | ||
Zyxel Atp700 | ||
Zyxel Atp700 Firmware | >=4.60<5.36 | |
All of | ||
Zyxel Atp800 | ||
Zyxel Atp800 Firmware | >=4.60<5.36 | |
All of | ||
Zyxel Usg Flex 100 | ||
Zyxel Usg Flex 100 Firmware | >=4.60<5.36 | |
All of | ||
Zyxel Usg Flex 100w | ||
Zyxel Usg Flex 100w Firmware | >=4.60<5.36 | |
All of | ||
Zyxel Usg Flex 200 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 200 | ||
All of | ||
Zyxel Usg Flex 50 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 50 | ||
All of | ||
Zyxel Usg Flex 500 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 500 | ||
All of | ||
Zyxel Usg Flex 50w Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 50w | ||
All of | ||
Zyxel Usg Flex 700 Firmware | >=4.60<5.36 | |
Zyxel Usg Flex 700 | ||
All of | ||
Zyxel Vpn100 Firmware | >=4.60<5.36 | |
Zyxel Vpn100 | ||
All of | ||
Zyxel Vpn1000 Firmware | >=4.60<5.36 | |
Zyxel Vpn1000 | ||
All of | ||
Zyxel Vpn300 Firmware | >=4.60<5.36 | |
Zyxel Vpn300 | ||
All of | ||
Zyxel Vpn50 Firmware | >=4.60<5.36 | |
Zyxel Vpn50 | ||
All of | ||
Any of | ||
Zyxel Zywall Usg 310 Firmware | >=4.60<4.73 | |
Zyxel Zywall Usg 310 Firmware | =4.73 | |
Zyxel Zywall Usg 310 | ||
All of | ||
Any of | ||
Zyxel Zywall Usg 100 Firmware | >=4.60<4.73 | |
Zyxel Zywall Usg 100 Firmware | =4.73 | |
Zyxel Zywall Usg 100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-28771 is a vulnerability that allows an unauthenticated attacker to execute OS commands remotely on Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls.
An attacker can exploit CVE-2023-28771 by sending crafted packets to the affected Zyxel firewall devices.
Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls are affected by CVE-2023-28771.
CVE-2023-28771 is a critical vulnerability that allows remote code execution on affected Zyxel firewall devices.
Yes, Zyxel has released a security advisory with mitigation measures for CVE-2023-28771.